
REMARKS 

This amendment is responsive to the above identified non-final Office Action. Claims 14 
- 92 are now pending. Claims 14 -17, 22, 27, 32, 37, 42, 47, 52, 57, and 62 have been amended 
to more particularly point out subject matter which the Applicants regard as their invention. No 
new subject matter has been added. 

I. Rejections Under 35 U.S.C. § 112 

Each of the independent claims 14-46 have been rejected under 35 U.S.C. § 112, first 
paragraph. Claims 14 and 15 have been rejected under 35 U.S.C. § 1 12, second paragraph, as 
failing to point out and distinctly claim the subject matter which applicants regard as their 
invention. 

Claimsl4-16, 22, 27, 32, 37, and 42 previously recited the provision of being "backwards 
compatible with preexisting public key infrastructure . . .." Applicants have amended each of 
these claims to recite the provision of being ". . . backwards compatible with preexisting public 
key transformation schemes ..." in order to make it more clear that this subject matter is 
supported by the description on page 7, lines 12-16 of the original application which recites that 
"[o]ther advantages of the invention include its employment for decryption without the need to 
revise the RS A public encryption transformation scheme currently in use on thousands of large 
and small computers." Each of the independent claims 47, 52, 57, and 62 has also been amended 
to include the provision of being "backwards compatible with preexisting public key 
infrastructure . . .." Applicants submit that the original specification provides adequate support 
for the amendments to each of the claims 14-16, 22, 27, 32, 37, 42, 47, 52, 57, and 62. 

Claims 14 and 15 have been rejected under 35 U.S.C. § 1 12, second paragraph, as failing 
to point out and distinctly claim the subject matter which applicants regard as their invention. 
Each of these claims previously recited a "minimal amount of computer instructions." Claims 14 
and 15 have both been amended to recite ". . . whereby said step of decoding is accelerated . . ." in 
place of ". . . whereby processing of a minimal amount of computer instructions is required for 
said step of decoding , . .." Applicants submit that the amendment now clearly points out that the 
step of decoding is fast and efficient as the Examiner correctly assumed for purposes of the 
present Office Action (see Examiner's comment on page 4, lines 4 and 5). 
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In light of the above described amendments and remarks, Applicants submit that all of 
the claims 14 through 46 now satisfy the requirements of the first and second paragraphs of 35 
U.S.C. § 1 12. Applicants thank the Examiner for careful review of the claims. 

IL Rejections Under 35 U.S.C. § 102 

Claims 14-66 have been rejected under 35 U.S.C. § 102(b) as being anticipated by Rivest 
et al. (US Patent No. 4,405,829). The Office Action states that ". . . the applicant's invention is 
particularly directed to ..." (1) using more than two primes in the modulus, and (2) using the 
Chinese Remainder Theorem to speed up decryption. The Office Action points specifically to 
column 13, lines 29-34 of Rivest et al. which states that, 

"In alternative embodiments, the present invention may use a modulus n which is 
a product of three or more primes (not necessarily distinct). Decoding may be performed 
modulo each of the prime factors of n and the results combined using "Chinese 
remaindering" or any equivalent method to obtain the result modulo n. ..." 

The Office Action further states on page 4, last paragraph, that "... the particular 
equations specified in claim 14, lines 1 1-24 and 30-32, and in the corresponding parts of other 
claims, are inherent in using the Chinese Remainder Theorem for decoding 

Claim 14 specifically recites the step of, 

. . combining said results of said subtasks in accordance with a fast recursive 
combining process to produce said ciphertext word signal C whereby, 
Yj = Yi_i + [(Cj-Yj.i) (Wj" 1 mod pj) mod pi] • Wj mod n 
2 < i < k, and 

C = Y k ,Y 1 =C 1 ,andw i =n^....." 

The Office Action states that these particular relationships are inherent in using the 
Chinese Remainder Theorem as taught by Rivest et al. However, the Office Actions provides 
no explanation or support for this position. Applicants respectfully submit that the above cited 
relationships are not "... inherent in using the Chinese Remainder Theorem . . .." The Chinese 
Remainder Theorem itself does not provide any actual solutions for solving a system of multiple 
linear congruencies. It merely states that a solution must exist for solving a system of multiple 
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linear congruencies under certain conditions. Applicants acknowledge that various types of 
recursive and Gaussian solutions (Chinese Remainder Algorithms) have been applied to two 
prime RSA encryption schemes. However, Applicants point out that none of the cited references 
teach an application of any Chinese Remainder Algorithm for practicing a multi-prime 
cryptographic scheme using a modulus n having more than two primes as recited in each of the 
independent claims of the present invention. 

Rivest et al. merely suggests a desire to use a modulus n which is a product of three or 
more primes, and perform decoding using "Chinese remaindering". However, as noted in the 
Office Action, Rivest et al. provides no actual solution, that is no effective Chinese Remainder 
Algorithm, for actually practicing a multi-prime cryptographic scheme using a modulus n having 
more than two primes as recited in each of the independent claims of the present invention. 
While Rivest et al. may be interpreted as generally suggesting the desirability or possibility of 
implementing a multi -prime cryptographic scheme, it provides no actual teaching of how to 
implement such a scheme. Therefore, Applicants assert that claims 14-66 are patentable under 
35 U.S.C. § 102(b) over Rivest et al, . 

III.Rejections Under 35 U.S.C. § 103(a): 

A. Claims 67-92 are patentable under 35 U.S.C. § 103(a) over Rivest et al. in view of 
Menezes et al. 

Claims 67-92 have been rejected under 35 U.S.C. § 103(a) as being unpatentable over 
Rivest et al. in view of Menezes et al. (note 14.87 (hi) on page 617 of the Handbook of Applied 
Cryptography). Each of claims 67, 69, 71, 73, 75, 77, 79, 81, 83, 85, 87, 89, and 91 recites 
". . .wherein said step of solving said sub-tasks includes processing each of said sub-tasks by an 
associated one of a plurality of exponentiator units operating substantially simultaneously. . .." 
The Office Action states on page 7 that "... Menezes et al. discloses simultaneous multiple 
exponentiation." 

Applicants respectfully point out that Menezes et al. teaches an algorithm (see algorithm 
14.88 on page 618 of Menezes et al. ) for simultaneous multiple exponentiation whereas each of 
the claims 67, 69, 71, 73, 75, 77, 79, 81, 83, 85, 87, 89, and 91 recites a structural hardware 
limitation defined by ". . .a plurality of exponentiator units operating substantially 
simultaneously. ..." The teaching of Algorithm 14.88 on pages 617-618 of Menezes et al. does 
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not mention "... a plurality of exponentiator units operating substantially simultaneously 
The algorithm in Menezes et al. includes a step of precomputing (see "step 1. Precomputation 
. . .") and computer program loops (see "step 3 For i from 1 to t do the following . ..."), all of 
which suggests that Algorithm 14.88 is intended to be implemented as computer readable 
instructions executed over a single processor for the purpose of achieving simultaneous multiple 
exponentiation. It is clear however, that Menezes et al. does not teach the structural limitations 
inherent in the language "... a plurality of exponentiator units operating substantially 
simultaneously The specification of the present application provides support for the 
exponentiator units on page 13, lines 10-20. 

Applicants assert that none of the cited references teaches "... a plurality of exponentiator 
units operating substantially simultaneously ..." Therefore, applicants assert that claims 67, 69, 
71, 73, 75, 77, 79, 81, 83, 85, 87, 89, and 91 are patentable under 35 U.S.C. § 103(a) over Rivest 
et al. in view of Menezes et al. 

B. Claims 14-92 are patentable under 35 U.S.C. § 103(a) over Menezes et al. in view of 
Quisquater et al. 

1. Neither Menezes et al. nor Quisquater et al. . taken either individually or 
collectively, teaches, hints, or suggests a cryptographic scheme using a composite 
number having more than two primes. 

Claims 14-92 have been rejected under 35 U.S.C. § 103(a) over Menezes et al. in view of 
Quisquater et al. The rejections of claims 14-92 under 35 U.S.C. § 103(a) rely on an assumption 
that Menezes et al. teaches a cryptographic scheme using a composite number having more than 
two primes. As explained in response to previous office actions, Menezes et al. is a well known 
textbook that describes conventional cryptography techniques and elementary number theory. 
The expression in Menezes et al. of the integer factorization problem (definition 3.3 recited on 
Page 89 of Menezes et al. ) merely recites a fundamental theorem of arithmetic which states that: 
"n = pi el p2 e2 . . .pi ek where the pi are pairwise distinct primes and each ej >1". 

This fundamental theorem of arithmetic, which has been known for centuries, appears in 

every text book that addresses number theory. This theorem merely states that all numbers are 

either prime or composite, and that all composite numbers have a unique factorization as a 

product of powers of prime numbers meaning that a particular composite number cannot be 
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formed as a product of a different set of primes. For the above explained reasons, Applicants 
assert that the expression "n = pi el p2 e2 . . .pi ek " does not even remotely suggest a solution to the 
problems associated with actually implementing a "multi-prime" cryptographic scheme using a 
composite number having more than two primes. For the reasons stated above, Applicants assert 
that Menezes et al does not teach the possibility of a multi-prime cryptographic scheme using a 
composite number having more than two primes. 

2. Neither Menezes et al. nor Quisquater et al. , taken either individually or 
collectively, teaches, hints, or suggests use of a Chinese Remainder Algorithm for 
solving subtasks in a cryptographic scheme using a composite number having more 
than two primes. 

Although Menezes et al. provides general teachings of Gauss's algorithm and Garner's 
algorithm for solving simultaneous congruences, Menezes et al. does not teach any specific 
application of these algorithms for solving subtasks in a cryptographic scheme using a composite 
number having more than two primes. Applicants further assert that neither Menezes et al. nor 
Quisquater et al. provides any motivation to solve subtasks in a cryptographic scheme using a 
composite number having more than two primes 

3. Neither Menezes et al. nor Quisquater et al. . taken either individually or 
collectively, teaches, hints, or suggests use a cryptographic scheme using a composite 
number having more than two primes wherein the scheme is backwards compatible 
with preexisting public key transformation schemes. 

Applicants do not understand the statement on page 1 1 of the Office Action which recites 
"[t]hat the well-known RSA cryptosystem is a special case of the above combination indicates 
that it is backwards compatible with RSA." Applicants assert that this statement is not 
supported by any fact. 

Page 7, lines 12-16, of the present application states that "[o]ther advantages of the 
invention include its employment for decryption without the need to revise the RSA public 
encryption transformation scheme currently in use on thousands of large and small computers." 
Applicants assert that neither Menezes et al. nor Quisquater et al. . taken either individually or 
collectively, teaches, hints, or suggests a cryptographic scheme using a composite number 
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having more than two primes wherein the scheme is backwards compatible with preexisting 
public key transformation schemes. 

Each of the independent claims 42, 47, 52, 57, and 62 has been amended to recite the 
provision of being "backwards compatible with preexisting public key transformation schemes 
..." Therefore, all of the independent claims 14-16, 22, 27, 32, 37, 42, 47, 52, 57, and 62 recite 
the provision of being "backwards compatible with preexisting public key transformation 
schemes . . and as such are patentable under 35 U.S.C. § 103(a) over Menezes et al. in view of 
Qui squat er et al. 

Attached hereto is a marked-up version of the changes made to the claims by the current 
amendment. The attached pages are captioned " VERSION WITH MARKINGS TO SHOW 
CHANGES MADE ." 

In view of the foregoing amendments and remarks, it is submitted that the application is 
now in condition for allowance and a notice of allowance of the pending claims 14 through 92 is 
respectfully requested. In the event that a telephone conference would expedite prosecution of 
the application, the Examiner is respectfully invited to contact the undersigned by telephone at 
the number set out below. 



Respectfully submitted, 



Dated: June 13, 2001 

OPPENHEIMER WOLFF & DONNELLY LLP 
Customer No. 25696 




I hereby certify that this paper (along with any referred to as being attachaHSr enclosed^ 
Service as First class mail in an envelope addressed to: Assistant Commissioner fopPa/t 



Date: June 13,2001 



CERTIFICATE OF MAILING (37 CFR 1.8(a)) 




yted oj/dunfe 13/2001, with the U.S. Postal 
mj&fd, 20234/ / 
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VERSION WITH MARKINGS TO SHOW CHANGES MADE 



In The Claims: 

1 14. (Three Times Amended) A method for establishing cryptographic communications that 

2 are backwards compatible with preexisting public key [infrastructures] transformation schemes . 

3 comprising the step of: 

4 encoding a plaintext message word M to a ciphertext word C, where M corresponds to a 

5 number representative of a message and 

6 0<M<n-l 

7 n being a composite number formed from the product of pi«p2». . .»p k where k is an integer greater 

8 than 2, and pi, p 2 , . . pk are distinct random prime numbers, and where the ciphertext word C is 

9 a number representative of an encoded form of message word M, said encoding step including 

10 the steps of, 

1 1 defining a plurality of k sub-tasks in accordance with, 

12 Ci = M, e ' (modpO, 

13 C 2 = M 2 e2 (modp 2 ), 

14 ; 

15 C k ^M/<(modp k ), 

16 where 

17 Mi=M(modpi), 

18 M 2 = M(modp 2 ), 

19 i 

20 M k = M (mod p k ), 
21 

22 ei =e(mod(pi- 1)), 

23 e 2 = e (mod (p 2 - 1)), and 

24 : 

25 e k = e(mod(p k - 1)), 
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26 

27 where e is a number relatively prime to (pi-1), (p2-l), • • •> an d (Pk-1)> 

28 solving said subtasks to determine results Ci, C2 . . . Q, 

29 combining said results of said subtasks in accordance with a fast recursive combining 

30 process to produce said ciphertext word signal C whereby, 

31 Yi = Yj_i + [(Ci-Yj.i) (Wj _1 mod pi) mod pj] • Wj mod n 

32 2<i <k, and 

33 C=Y k ,Y 1 =C 1 ,andw i =f]jE? y 

34 whereby [processing of a minimal amount of computer instructions is required for] said 
3 5 step of encoding is accelerated . 

1 15. (Three Times Amended) A method for establishing cryptographic communications that are 

2 backwards compatible with preexisting public key [infrastructures] transformation schemes . 

3 comprising the steps of: 

4 decoding a ciphertext word C to a message word M, wherein M corresponds to a number 

5 representative of a message and wherein, 

6 0<M<n-l 

7 wherein n is a composite number formed by the product of pi«p2*. . ••Pk> k is an integer greater 

8 than 2, and pi, P2, . . . , Pk are distinct random prime numbers, C is a number representative of an 

9 encoded form of message word M that is encoded by transforming said message word M to said 

10 ciphertext word C whereby, 

11 C = M e (modn), 

12 and wherein e is a number relatively prime to (pi-1), (p2-l), - . and (pk-1), 

13 said decoding step being performed using a decryption exponent d that is defined by 

14 d se e' 1 mod ((pi-1) (p 2 -l) ... (Pk-l)X 

15 said decoding step including the steps of, 

16 (i) defining a plurality of k sub-tasks in accordance with 

17 Mi = C/ 1 (modpi), 

18 M 2 s C 2 rf2 (modp 2 ), 
19 
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20 M k = C/ k (modp k ), 

21 

22 where 

23 Ci = C (mod pi), 

24 C 2 = C (mod p 2 ), 

25 : 

26 C k a C (mod p k ), 
27 

28 di =d(mod(pi- 1)), 

29 d 2 = d (mod (p 2 - 1 )), and 
30 

31 d k = d(mod(p k -l)), 

32 (ii) solving said sub-tasks to determine results Mi, M 2 , ... M k , and 

33 (iii) combining said results of said subtasks in accordance with a fast recursive combining 

34 process to produce said message word M in accordance with, 

35 Yj = Yj.i + [(Mj -Yj.i) (wj" 1 mod pO mod pi] • w; mod n 

36 where 2 < i < k, and 

37 M=Y kJ Y,=M 1 ,andw i =n^ 

38 whereby [processing of a minimal amount of computer instructions is required for] said 

39 step of decoding is accelerated. 

1 16. (Three Times Amended) A cyptographic communications system for establishing 

2 communications that are backwards compatible with preexisting public key transformation 

3 schemes [infrastructures], comprising: 

4 a communication medium; 

5 encoding means coupled to said communication medium and adapted for transforming a 

6 transmit message word M to a ciphertext word C and for transmitting said ciphertext word C on 

7 said medium, where M corresponds to a number representative of a message, and 

8 0 < M < n-1 where n is a composite number of the form 
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9 n = pi.p2»...»pk, 

10 where k is an integer greater than 2 and pi, P2, . • - ,p k are distinct random prime numbers, 

1 1 and where C corresponds to a number representative of an enciphered form of said message, and 

12 corresponds to 

13 C = M e (modn), 

14 where e is a number relatively prime to (pi-1), (p2-l), . • ., and (pic-1); and 

15 decoding means coupled to said communication medium and adapted for receiving C via 

16 said medium and for transforming C to a receive message word M' where M' corresponds to a 

17 number representative of a deciphered form of C, said decoding means being operative to 

1 8 perform a decryption process using a decryption exponent d that is defined by 

19 dse-'modCCpi-Ote-l)...^)), 

20 said decryption process including the steps of 

21 (i) defining a plurality of k sub-tasks in accordance with, 

22 Ci = C (mod p,), 

23 C 2 = C (mod p 2 ), 

24 

25 C k = C(modp k ), 

26 where, 

27 d, = d (mod (p, - 1)), 

28 d 2 sd(mod(p 2 - 1)), 

29 : 

30 d k sd(mod(p k - 1)), 
31 

32 Mi' = C/' (modp,), 

33 M 2 ' = C* 1 (mod p 2 ), and 
34 

35 M k ' ^C/'(modp k ), 

36 (ii) solving said sub-tasks to determine results Mi M2', ... M k ', and 
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37 (iii) combining said results of said subtasks by a fast recursive combining process to 

38 produce said receive message word M' in accordance with 

39 Yi = Yj_i + [(Mj -Yj_i) (wj" 1 mod pO mod pi] • Wi mod n 

40 where 2 < i < k and 

41 M^Y^Y^Mpandw^fl^., 

42 wherein M ,= M. 

1 17. (Twice Amended) A method for establishing cryptographic communications that are 

2 backwards compatible with preexisting public key [infrastructures] transformation schemes . 

3 comprising the steps of: 

4 encoding a plaintext message word M to a ciphertext word C, wherein M corresponds to 

5 a number representative of a message and wherein 

6 0<M<n-l, 

7 wherein n is a composite number formed by the product of pi»p 2 ». . ••Pk, k is an integer 

8 greater than 2 and pi, p 2 , . . Pk are distinct random prime numbers, C is a number 

9 representative of an encoded form of message word M, and wherein said encoding step 

10 comprises transforming said message word M to said ciphertext word C, whereby 

11 C-M e (modn), 

12 and wherein e is a number relatively prime to (pi-l) s (p 2 -l), . . . , and (pk-1); and 

13 decoding said ciphertext word C to a receive message word M\ said decoding step being 

14 performed using a decryption exponent d that is defined by 

15 d ^ e 1 mod ((prl) (p 2 -l) ... (p k -l)), 

16 said decoding step including the further steps of, 

17 defining a plurality of k sub-tasks in accordance with 

18 Mi' ^ C* (modpi), 

19 M 2 ' = C 2 rf2 (modp 2 ), 

20 : 

21 M k ' sC/'CmodpO, 

22 wherein 
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23 Cj = C (mod p t ), 

24 C 2 = C (mod p 2 ), 

25 

26 C k - C (mod p k ), 

27 

28 di=d(mod(pi-l)), 

29 d 2 s d (mod (p 2 - 1)), and 
30 

31 d k sd(mod(p k -l)), 

32 solving said sub-tasks to determine results Mi ', M 2 ', ... M k ', and 

33 combining said results of said sub-tasks to produce said receive message word 

34 M\ wherein M'=M. 

1 22. (Twice Amended) A cyptographic communications system for establishing 

2 communications that are backwards compatible with preexisting public key [infrastructures] 

3 transformation schemes * comprising: 

4 a communication medium; 

5 encoding means coupled to said communication medium and adapted for transforming a 

6 transmit message word M to a ciphertext word C and for transmitting said ciphertext word C on 

7 said medium, wherein M corresponds to a number representative of a message, and 

8 0 < M < n-1, wherein n is a composite number of the form, 

9 n = pi«p 2 «...»p k 

10 wherein k is an integer greater than 2 and pi, p 2 , . . .,p k are distinct random prime 

1 1 numbers, and wherein said ciphertext word C corresponds to a number representative of an 

1 2 enciphered form of said message and corresponds to 

13 C = M e (mod n), 

14 wherein e is a number relatively prime to (pi-1), (p 2 -l), . . and (p k -l); and 

1 5 decoding means communicatively coupled with said communication medium for 

1 6 receiving said ciphertext word C via said medium, said decoding means being operative to 

1 7 perform a decryption process for transforming said ciphertext word C to a receive message word 
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18 M', wherein M' corresponds to a number representative of a deciphered form of C, said 

19 decryption process using a decryption exponent d that is defined by 

20 d = e 1 mod ((p,-l) (p 2 -l) ... (p k -l)), 

21 said decryption process including the steps of 

22 defining a plurality of k sub-tasks in accordance with 

23 Mj' = (modpi), 

24 M 2 ' = C 2 rf, (modp2), 
25 

26 M k ' =C/*(mod Pk ), 

27 wherein 

28 Ci s C (mod pi), 

29 C 2 = C (mod p 2 ), 

30 : 

31 C k sC(modp k ), 
32 

33 d, = d (mod (pi - 1)), 

34 d 2 = d(mod(p 2 - 1)), 
35 

36 d k = d(mod(p k - 1)), 

37 solving said sub-tasks to determine results Mi ', M 2 ', ... M k \ and 

38 combining said results of said sub-tasks to produce said receive message word M' 

39 whereby M'=M. 

1 27. (Twice Amended) A method for establishing cryptographic communications that are 

2 backwards compatible with preexisting public key [infrastructures] transformation schemes . 

3 comprising the step of: 

4 encoding a plaintext message word M to a ciphertext word C, wherein M corresponds to 

5 a number representative of a message, and 

6 0<M<n-l, 
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7 n being a composite number formed from the product of pi»p 2 *. . .•pk, wherein k is an integer 

8 greater than 2 and pi, p 2 , . . pk are distinct random prime numbers, and wherein the ciphertext 

9 word C is a number representative of an encoded form of message word M, wherein said step of 

1 0 encoding includes the steps of 

1 1 defining a plurality of k sub-tasks in accordance with 

12 Ci - (modpi), 

13 C 2 s M 2 e2 (modp 2 ), 

14 : 

15 C k s M/*(modp k ), 

16 where 

17 Mi s M (mod pi), 

18 M 2 = M (mod p 2 ), 

19 : 

20 M k = M (mod p k ), 
21 

22 ei s e (mod (p t - 1)), 

23 e 2 = e (mod (p 2 - 1)), and 

24 : 

25 e k = e(mod(p k - 1)), 

26 wherein e is a number relatively prime to (pi-1), (p 2 -l)> . . and (p k -l), 

27 solving said sub-tasks to determine results Ci, C 2 , ... C k , and 

28 combining said results of said sub-tasks to produce said ciphertext word C. 

1 32. (Twice Amended) A cyptographic communications system for establishing 

2 communications that are backwards compatible with preexisting public key [infrastructures] 

3 transformation schemes , comprising: 

4 a communication medium; 
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5 encoding means coupled to said communication medium and operative to transform a 

6 transmit message word M to a ciphertext word C, and to transmit said ciphertext word C on said 

7 medium, wherein M corresponds to a number representative of a message, and 

8 0<M<n-l, 

9 n being a composite number formed from the product of pi«p2». . .•Pk wherein k is an integer 

10 greater than 2 and pi, p2, . . pk, are distinct random prime numbers, and wherein the ciphertext 

1 1 word C is a number representative of an encoded form of message word M, said encoding means 

12 being operative to transform said transmit message word M to said ciphertext word C by 

1 3 performing an encoding process comprising the steps of 

14 defining a plurality of k sub-tasks in accordance with 

15 Ci s M' 1 (modpi), 

16 C 2 = M/ 2 (mod p 2 ), 

17 ; 

18 C k = Jlf /* (mod pk), 

19 where 

20 Mi s M (mod pi), 

21 M 2 = M (mod p2), 

22 ; 

23 M k = M (mod p k ), 
24 

25 ei = e (mod (pi - 1)), 

26 e 2 = e (mod (p 2 - 1)), and 

27 ; 

28 e k ^ e (mod (p k - 1)), 

29 wherein e is a number relatively prime to (pi-1), (P2-1), • • and (p k -l), 

30 solving said sub-tasks to determine results Ci, C2, ... Ck, and 

3 1 combining said results of said sub-tasks to produce said ciphertext word C. 
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1 37. (Twice Amended) A method for establishing cryptographic communications that are 

2 backwards compatible with preexisting public key [infrastructures] transformation schemes . 

3 comprising the steps of: 

4 decoding a ciphertext word C to a message word M, wherein M corresponds to a number 

5 representative of a message and wherein 

6 0<M<n-l 

7 wherein n is a composite number formed by the product of pi»p2». . .»pk> k is an integer greater 

8 than 2 and pi, p2, . . Pk are distinct random prime numbers, C is a number representative of an 

9 encoded form of message word M that is encoded by transforming said message word M to said 

1 0 ciphertext word C whereby 

11 C = M e (mod n), 

12 and wherein e is a number relatively prime to (pr 1), (p2-l), - . and (pk-1); 

13 said decoding step being performed using a decryption exponent d that is defined by 

14 d^e- 1 mod((p r l)(p 2 -l)...(p k -l)) ? 

15 wherein said step of decoding includes the steps of 

1 6 defining a plurality of k sub-tasks in accordance with 

17 Mi = C x dy (modpO, 

18 M 2 = C/ 2 (modp 2 ) J 
19 

20 M k s C k dk (mod p k ), 

21 wherein 

22 Ci = C(modpi), 

23 C 2 s C (mod p 2 ), 

24 

25 C k = C (mod p k ), 

26 

27 di s d (mod (p, - 1)), 

28 d 2 = d (mod (p 2 - 1)), and 

29 
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30 d k sd(mod(p k -l)), 

31 solving said sub-tasks to determine results Mi, M2, ... Mk, and 

32 combining said results of said sub-tasks to produce said message word M. 

1 42, (Twice Amended) A cyptographic communications system for establishing communications 

2 that are backwards compatible with preexisting public key [infrastructures] transformation 

3 schemes , comprising: 

4 a communication medium; 

5 communicatively coupled with said communication medium for receiving a ciphertext 

6 word C via said medium, and being operative to transform said ciphertext word C to a receive 

7 message word M', wherein a message M corresponds to a number representative of a message 

8 and wherein, 

9 0<M<n-l 

10 wherein n is a composite number formed by the product of pi»P2». • -•Pk, k is an integer greater 

1 1 than 2 and pi, p2, . . Pk are distinct random prime numbers, and wherein said ciphertext word C 

12 is a number representative of an encoded form of said message word M that is encoded by 

13 transforming M to said ciphertext word C whereby, 

14 C = M e (modn), 

15 and wherein e is a number relatively prime to (pi-1), (p2-l)> . - and (pk-1); 

16 said decoding means being operative to perform a decryption process using a decryption 

1 7 exponent d that is defined by 

18 d ^ e 1 mod ((p r l) (p 2 -l) ... (p k -l)), 

19 said decryption process including the steps of 

20 defining a plurality of k sub-tasks in accordance with, 

21 M,' s C" 1 (modpi), 

22 M 2 ' = C 2 dl (mod p 2 ), 
23 

24 M k ' =C/*(modp k ), 

25 wherein, 

26 Ci =C(modpi), 
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27 

28 
29 
30 
31 
32 

33 
34 

35 
36 
37 



C 2 = C (mod p 2 ), 

C k = C (mod p k ), 

di ■ d (mod (pi - 1)), 
d 2 s d (mod (p 2 - 1)), and 

d k = d(mod(p k - 1)), 

solving said sub-tasks to determine results M) ', M2', ... Mk', and 
combining said results of said sub-tasks to produce said receive message word 
M\ whereby M'=M. 



1 
2 
3 
4 
5 
6 
7 
8 
9 
10 
11 

12 

13 

14 

15 

16 
17 



47. (Twice Amended) A method for generating a digital signature that is backwards 
compatible with preexisting public key transformation schemes, comprising the step of: 

signing a plaintext message word M to create a signed ciphertext word C, wherein M 
corresponds to a number representative of a message, and 

0<M<n-l, 

n being a composite number formed from the product of pi«p 2 ». . ••Pk, wherein k is an integer 
greater than 2 and pi, p 2 , . . ., Pk are distinct random prime numbers, and wherein the signed 
ciphertext word C is a number representative of a signed form of message word M, wherein 
C = M d (mod n), and 

wherein said step of signing includes the steps of 
defining a plurality of k sub- tasks in accordance with 

Ci = M' 1 (modp,), 

C 2 = M/ 2 (modp 2 ), 



C k = M k k (mod p k ), 



where 



Mi = M (mod pi), 
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18 M 2 = M (mod p 2 ), 

19 : 

20 M k s M (mod p k ), 
21 

22 di =d(mod(pi- 1)), 

23 d 2 = d (mod (p 2 - 1)), and 

24 : 

25 d k = d(mod(p k - 1)), 

26 wherein d is defined by 

27 d = e _1 mod((pi- 1). (p 2 - 1)* ... • (p k - 1)), and 

28 e is a number relatively prime to (pi-1), (P2-I), - . and (p k -l), 

29 solving said sub-tasks to determine results Q, C 2 , ... C k , and 

30 combining said results of said sub-tasks to produce said ciphertext word C. 

1 52. (Twice Amended) A digital signature generation system that is backwards compatible 

2 with preexisting public key transformation schemes, comprising: 

3 a communication medium; 

4 digital signature generating means coupled to said communication medium and operative 

5 to transform a transmit message word M to a signed ciphertext word C, and to transmit said 

6 signed ciphertext word C on said medium, wherein M corresponds to a number representative of 

7 a message, and 

8 0<M<n-l, 

9 n being a composite number formed from the product of pi»p 2 ». . .•pk wherein k is an integer 

10 greater than 2 and pi, p 2 , . . p k , are distinct random prime numbers, and wherein the signed 

1 1 ciphertext word C is a number representative of a signed form of said message word M, wherein 

12 C = M d (mod n), 

13 said digital signature generating means being operative to transform said transmit 

14 message word M to said signed ciphertext word C by performing a digital signature generating 

15 process comprising the steps of, 

16 defining a plurality of k sub-tasks in accordance with, 
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17 C, = M,"' (modp,), 

18 C 2 = M/^modpz), 

19 i 

20 C k = M k " k (mod p k ), 

21 where, 

22 Mi s M (mod p ( ), 

23 M 2 ■ M (mod p 2 ), 

24 : 

25 M k = M (mod p k ), 
26 

27 di s d (mod (pi - 1)), 

28 d 2 = d (mod (p 2 - 1)), and 

29 : 

30 d k = d(mod(p k - 1)), 

3 1 wherein d is defined by, 

32 d^e" 1 mod((pi- 1). (p 2 -l)« .... (p k -l)), and 

33 e is a number relatively prime to (pi-1), (p 2 -l), • • and (p k -l), 

34 solving said sub-tasks to determine results Ci, C 2 , ... C k , and 

35 combining said results of said sub-tasks to produce said signed ciphertext word C. 

1 57. (Twice Amended) A digital signature process that is backwards compatible with 

2 preexisting public key transformation schemes, comprising the steps of: 

3 signing a plaintext message word M to create a signed ciphertext word C, wherein M 

4 corresponds to a number representative of a message and wherein 

5 0 < M < n-1 

6 wherein n is a composite number formed by the product of pi«p 2 ». . .«p k , k is an integer 

7 greater than 2 and pi , p 2 , . . ., p k are distinct random prime numbers, C is a number 
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8 representative of a signed form of message word M, and wherein said encoding step 

9 comprises transforming said message word M to said ciphertext word C whereby, 

10 CsM d (mod n), 

1 1 wherein d is defined by 

12 dse' 1 mod((pi- 1). (p 2 - 1) (pk- 1)), and 

13 e is a number relatively prime to (pi-1), (P2-I), • • •, and (pk-1); and 

14 verifying said ciphertext word C to a receive message word M' by performing the steps 

15 of, 

16 defining a plurality of k sub-tasks in accordance with 

17 M,' = C, e ' (modp,), 

18 M 2 ' = C 2 e2 (modp 2 ), 
19 

20 M k ' b C° k (mod p k ), 

21 wherein 

22 Ci = C (mod pi), 

23 C 2 = C (mod p 2 ), 

24 : 

25 C k = C(modp k ), 
26 

27 ei = e (mod (pi - 1)), 

28 e 2 = e (mod (p 2 - 1)), and 

29 : 

30 e k = e(mod(p k - 1)), 

3 1 solving said sub-tasks to determine results Mi ', M 2 ', ... M k \ and 

32 combining said results of said sub-tasks to produce said receive message word 

33 M\ whereby M'=M. 
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1 62. (Twice Amended) A digital signature system that is backwards compatible with 

2 preexisting public key transformation schemes, comprising: 

3 a communication medium; 

4 digital signature generating means coupled to said communication medium and adapted 

5 for transforming a message word M to a signed ciphertext word C and for transmitting said 

6 signed ciphertext word C on said medium, wherein M corresponds to a number representative of 

7 a message, and 

8 0 < M < n-1, wherein n is a composite number of the form 

9 n = pi.p 2 »...»Pk, 

10 wherein k is an integer greater than 2 and pi, p2, . . .,pk are distinct random prime 

1 1 numbers, and wherein said signed ciphertext word C corresponds to a number representative of a 

12 signed form of said message word M and corresponds to 

13 C = M d (modn), 

14 wherein d is defined by 

15 d = e" 1 mod ( (pi - 1) • (p2- 1) • ... • (pk- 1)), and 

16 e is a number relatively prime to (pi-1), (P2-I), . . and (pk-1); and 

17 digital signature verification means communicatively coupled with said communication 

1 8 medium for receiving said signed ciphertext word C via said medium, and being operative to 

19 verify said signed ciphertext word C by performing the steps of, 

20 defining a plurality of k sub-tasks in accordance with 

21 M t ' = C' 1 (modpi), 

22 M 2 ' = C 2 £2 (modp 2 ), 

23 : 

24 M k ' sQ*(modpk), 

25 wherein 

26 Ci = C(modp!), 

27 C 2 = C(modp 2 ), 
28 

29 C k ^C(modpk), 
30 
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31 d = e (mod (pi - 1)), 

32 e 2 = e (mod (p 2 - 1)), 
33 

34 e k = e(mod(p k - 1)), 

35 solving said sub-tasks to determine results Mi \ M2', ... Mk\ and 

36 combining said results of said sub-tasks to produce said receive message word M' 



37 wherein M'=M. 
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